module

Make Token Command

Disclosed
N/A
Created
2023-06-08

Description

In its default configuration, this module creates a new network security context with the specified
logon data (username, domain and password). Under the hood, Meterpreter's access token is cloned, and
a new logon session is created and linked to that token. The token is then impersonated to acquire
the new network security context. This module has no effect on local actions - only on remote ones
(where the specified credential material will be used). This module does not validate the credentials
specified.

Authors

Daniel López Jiménez (attl4s)
Simone Salucci (saim1z)

Platform

Windows

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


msf > use post/windows/manage/make_token
msf post(make_token) > show actions
...actions...
msf post(make_token) > set ACTION < action-name >
msf post(make_token) > show options
...show and set options...
msf post(make_token) > run

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.